proxygen
TicketCodec.cpp
Go to the documentation of this file.
1 /*
2  * Copyright (c) 2018-present, Facebook, Inc.
3  * All rights reserved.
4  *
5  * This source code is licensed under the BSD-style license found in the
6  * LICENSE file in the root directory of this source tree.
7  */
8 
9 #include <fizz/server/TicketCodec.h>
10 
11 namespace fizz {
12 std::string toString(fizz::server::CertificateStorage storage) {
13  using fizz::server::CertificateStorage;
14  switch (storage) {
15  case CertificateStorage::None:
16  return "None";
17  case CertificateStorage::X509:
18  return "X509";
19  case CertificateStorage::IdentityOnly:
20  return "IdentityOnly";
21  default:
22  return "Unknown storage";
23  }
24 }
25 namespace server {
26 void appendClientCertificate(
27  CertificateStorage storage,
28  const std::shared_ptr<const Cert>& cert,
29  folly::io::Appender& appender) {
30  Buf clientCertBuf = folly::IOBuf::create(0);
31  CertificateStorage selectedStorage;
32  if (!cert || storage == CertificateStorage::None) {
33  selectedStorage = CertificateStorage::None;
34  } else if (storage == CertificateStorage::X509 && cert->getX509()) {
35  selectedStorage = CertificateStorage::X509;
36  clientCertBuf = folly::ssl::OpenSSLCertUtils::derEncode(*cert->getX509());
37  } else {
38  selectedStorage = CertificateStorage::IdentityOnly;
39  clientCertBuf = folly::IOBuf::copyBuffer(cert->getIdentity());
40  }
41  fizz::detail::write(selectedStorage, appender);
42  if (selectedStorage != CertificateStorage::None) {
43  fizz::detail::writeBuf<uint16_t>(clientCertBuf, appender);
44  }
45 }
46 
47 std::shared_ptr<const Cert> readClientCertificate(folly::io::Cursor& cursor) {
48  CertificateStorage storage;
49  fizz::detail::read(storage, cursor);
50  switch (storage) {
51  case CertificateStorage::None:
52  return nullptr;
53  case CertificateStorage::X509: {
54  Buf clientCertBuf;
55  fizz::detail::readBuf<uint16_t>(clientCertBuf, cursor);
56  return CertUtils::makePeerCert(std::move(clientCertBuf));
57  }
58  case CertificateStorage::IdentityOnly: {
59  Buf ident;
60  fizz::detail::readBuf<uint16_t>(ident, cursor);
61  return std::make_shared<const IdentityCert>(
62  ident->moveToFbString().toStdString());
63  }
64  }
65 
66  return nullptr;
67 }
68 } // namespace server
69 } // namespace fizz
fizz::toString
folly::StringPiece toString(StateEnum state)
Definition: State.cpp:16
fizz::detail::write
void write(const T &in, folly::io::Appender &appender)
Definition: Types-inl.h:112
folly::IOBuf::create
static std::unique_ptr< IOBuf > create(std::size_t capacity)
Definition: IOBuf.cpp:229
folly::gen::move
constexpr detail::Map< Move > move
Definition: Base-inl.h:2567
fizz::server::readClientCertificate
std::shared_ptr< const Cert > readClientCertificate(folly::io::Cursor &cursor)
Definition: TicketCodec.cpp:47
fizz::detail::read
size_t read(T &out, folly::io::Cursor &cursor)
Definition: Types-inl.h:258
fizz
Definition: Actions.h:16
fizz::CertUtils::makePeerCert
static std::unique_ptr< PeerCert > makePeerCert(Buf certData)
Definition: Certificate.cpp:87
string
const char * string
Definition: Conv.cpp:212
fizz::Buf
std::unique_ptr< folly::IOBuf > Buf
Definition: Types.h:22
folly::ssl::OpenSSLCertUtils::derEncode
static std::unique_ptr< IOBuf > derEncode(X509 &)
Definition: OpenSSLCertUtils.cpp:194
fizz::server::appendClientCertificate
void appendClientCertificate(CertificateStorage storage, const std::shared_ptr< const Cert > &cert, folly::io::Appender &appender)
Definition: TicketCodec.cpp:26
folly::IOBuf::copyBuffer
static std::unique_ptr< IOBuf > copyBuffer(const void *buf, std::size_t size, std::size_t headroom=0, std::size_t minTailroom=0)
Definition: IOBuf.h:1587